Re: [OPSEC] Sharing a new draft
liuchunchi <liuchunchi@huawei.com> Sat, 22 July 2023 19:09 UTC
Return-Path: <liuchunchi@huawei.com>
X-Original-To: opsec@ietfa.amsl.com
Delivered-To: opsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 66157C151549 for <opsec@ietfa.amsl.com>; Sat, 22 Jul 2023 12:09:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.794
X-Spam-Level:
X-Spam-Status: No, score=-1.794 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTTP_ESCAPED_HOST=0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id My-rzUyn2on7 for <opsec@ietfa.amsl.com>; Sat, 22 Jul 2023 12:09:23 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AEE3CC15155B for <opsec@ietf.org>; Sat, 22 Jul 2023 12:09:22 -0700 (PDT)
Received: from lhrpeml500004.china.huawei.com (unknown [172.18.147.200]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4R7bWH0gZQz6J65x for <opsec@ietf.org>; Sun, 23 Jul 2023 03:06:35 +0800 (CST)
Received: from canpemm500006.china.huawei.com (7.192.105.130) by lhrpeml500004.china.huawei.com (7.191.163.9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.27; Sat, 22 Jul 2023 20:09:18 +0100
Received: from dggpeml500018.china.huawei.com (7.185.36.186) by canpemm500006.china.huawei.com (7.192.105.130) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.27; Sun, 23 Jul 2023 03:09:16 +0800
Received: from dggpeml500018.china.huawei.com ([7.185.36.186]) by dggpeml500018.china.huawei.com ([7.185.36.186]) with mapi id 15.01.2507.027; Sun, 23 Jul 2023 03:09:16 +0800
From: liuchunchi <liuchunchi@huawei.com>
To: "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>, "opsec@ietf.org" <opsec@ietf.org>
CC: Qin Wu <bill.wu@huawei.com>, COMBES Jean-Michel INNOV/NET <jeanmichel.combes@orange.com>, "Frank Brockners (fbrockne)" <fbrockne@cisco.com>
Thread-Topic: Sharing a new draft
Thread-Index: Adm8z/CNxX5PoLvkREa+5arh2lGU1w==
Date: Sat, 22 Jul 2023 19:09:16 +0000
Message-ID: <95e284f802bc482599633533a3f86ebc@huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.81.207.197]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/6wU7bkwHUekgcGeFkSxN2gRHMag>
Subject: Re: [OPSEC] Sharing a new draft
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 22 Jul 2023 19:09:28 -0000
Hi Med, Thank you for your valuable comments. I am very happy to add the history of proof of transit work in the -01 draft. It could also help to develop more convincing use cases to the work. The draft is open for discussion and we invite suggestions and collaborations of all kinds :) Regarding the appropriate venue of the work, I do think path assessment/validation is a big topic not one draft can cover. It includes various of techniques of different maturity stages-- some are good for IETF and some are good for IRTF. I will further consider it with more inputs. If you also attended the 117 meeting in-person let's catch up! Best, Chunchi -----邮件原件----- 发件人: mohamed.boucadair@orange.com <mohamed.boucadair@orange.com> 发送时间: 2023年7月21日 6:05 收件人: liuchunchi <liuchunchi@huawei.com>; opsec@ietf.org 抄送: Qin Wu <bill.wu@huawei.com>; COMBES Jean-Michel INNOV/NET <jeanmichel.combes@orange.com>; Frank Brockners (fbrockne) <fbrockne@cisco.com> 主题: RE: Sharing a new draft Hi Chunchi, Qin, all, Thank you for sharing this draft. Even if I understand that this is a -00, I was expecting the draft to leverage on the long history with the proof of transit work in the IETF. I'm afraid that the current set of use cases are not that appealing to motivate what the document seems (at least to me :-)) to over-sell in the abstract/introduction. That's said, I do think that there are aspects of the network path assessment/validation that are worth to be investigated (not only proof of transit, but proof of non transit). These considerations would be more appropriate to investigate in venues such as PANRG, especially that the I-D will have to answer to the same PANRG questions about whether/how internal paths are exposed + how forwarding instructions are signaled to network elements, etc. FWIW, some comments and suggestions can be found at: * pdf: https://github.com/boucadair/IETF-Drafts-Reviews/blob/master/draft-liu-on-network-path-validation-00-rev%20Med.pdf * doc: https://github.com/boucadair/IETF-Drafts-Reviews/raw/master/draft-liu-on-network-path-validation-00-rev%20Med.doc Cheers, Med > -----Message d'origine----- > De : OPSEC <opsec-bounces@ietf.org> De la part de liuchunchi Envoyé : > vendredi 14 juillet 2023 11:09 À : opsec@ietf.org Cc : Qin Wu > <bill.wu@huawei.com> Objet : [OPSEC] Sharing a new draft > > Hi Team, > > We are sharing a new draft we wrote titled "On Network Path > Validation". In this draft, we explore the path validation problem, > how it affects routing security, its potential solution and several > real life use cases. > > If you are interested in the topic we sincerely invite you to take a > look and give comments. > > Draft: > https://datatracker.ietf.org/doc/draft-liu-on-network-path-validation/ > > > Thank you! > > Best regards, > Chunchi > > -----邮件原件----- > 发件人: I-D-Announce <i-d-announce-bounces@ietf.org> 代表 internet- > drafts@ietf.org > 发送时间: 2023年7月9日 21:43 > 收件人: i-d-announce@ietf.org > 主题: I-D Action: draft-liu-on-network-path-validation-00.txt > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > > Title : On Network Path Validation > Authors : Chunchi Liu > Qin Wu > Liang Xia > Filename : draft-liu-on-network-path-validation-00.txt > Pages : 8 > Date : 2023-07-09 > > Abstract: > Network path validation refers to a technology that ensures data > packets to strictly travel along a chosen network path. It aims to > enforce data to travel only on the assigned network path and > provide > evidence that the data has indeed followed this path. While > existing > efforts primarily focus on the control plane, path validation > protects and monitors routing security in the data plane. This > document provides a technical definition of the Network Path > Validation problem, briefly overviews past efforts, models its > ideal > solution and design goals, and lists out different use case across > various layers of the Internet. > > The IETF datatracker status page for this Internet-Draft is: > https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2F > datatracker.ietf.org%2Fdoc%2Fdraft-liu-on-network-path- > validation%2F&data=05%7C01%7Cmohamed.boucadair%40orange.com%7Ceff8 > 041a74ff4356da3308db844a1935%7C90c7a20af34b40bfbc48b9253b6f5d20%7C > 0%7C0%7C638249225999399633%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjA > wMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7 > C&sdata=IXU4NNwRswq8hAPdQmUUo93EY8ELWkP6VSzRyhmrQhs%3D&reserved=0 > > There is also an HTML version available at: > https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2F > www.ietf.org%2Farchive%2Fid%2Fdraft-liu-on-network-path- > validation- > 00.html&data=05%7C01%7Cmohamed.boucadair%40orange.com%7Ceff8041a74 > ff4356da3308db844a1935%7C90c7a20af34b40bfbc48b9253b6f5d20%7C0%7C0% > 7C638249225999399633%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiL > CJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdat > a=%2FiK8c%2B1pLXT%2FnS6QRWpDQ3UeMA6%2FbAqPwD4aG6pbBwo%3D&reserved= > 0 > > Internet-Drafts are also available by rsync at > rsync.ietf.org::internet-drafts > > > _______________________________________________ > I-D-Announce mailing list > I-D-Announce@ietf.org > https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2F > www.ietf.org%2Fmailman%2Flistinfo%2Fi-d- > announce&data=05%7C01%7Cmohamed.boucadair%40orange.com%7Ceff8041a7 > 4ff4356da3308db844a1935%7C90c7a20af34b40bfbc48b9253b6f5d20%7C0%7C0 > %7C638249225999399633%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAi > LCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sda > ta=dDWM8gtRRswjxRuvnC6haH7%2FfGY501LTgL7GfypNzP0%3D&reserved=0 > Internet-Draft directories: > https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fw > ww.ietf.org%2Fshadow.html&data=05%7C01%7Cmohamed.boucadair%40orang > e.com%7Ceff8041a74ff4356da3308db844a1935%7C90c7a20af34b40bfbc48b92 > 53b6f5d20%7C0%7C0%7C638249225999399633%7CUnknown%7CTWFpbGZsb3d8eyJ > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C > 3000%7C%7C%7C&sdata=QLkeoCz7HykfWb3k8WclWd1aYCR93AcVpSNTTVLEz6U%3D > &reserved=0 or > https://eur03.safelinks.protection.outlook.com/?url=ftp%3A%2F%2Fft > p.ietf.org%2Fietf%2F1shadow- > sites.txt&data=05%7C01%7Cmohamed.boucadair%40orange.com%7Ceff8041a > 74ff4356da3308db844a1935%7C90c7a20af34b40bfbc48b9253b6f5d20%7C0%7C > 0%7C638249225999399633%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDA > iLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sd > ata=5SUP3jW68Gtjg2uvoCmJz6ZaHuxuhL%2Fiet3nVJKVr1I%3D&reserved=0 > _______________________________________________ > OPSEC mailing list > OPSEC@ietf.org > https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2F > www.ietf.org%2Fmailman%2Flistinfo%2Fopsec&data=05%7C01%7Cmohamed.b > oucadair%40orange.com%7Ceff8041a74ff4356da3308db844a1935%7C90c7a20 > af34b40bfbc48b9253b6f5d20%7C0%7C0%7C638249225999399633%7CUnknown%7 > CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiL > CJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=28jt31h0qMzscGEOSzHDtzPzxncXNB > B7aS8w0lEA%2Fz0%3D&reserved=0 ____________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
- [OPSEC] Sharing a new draft liuchunchi
- Re: [OPSEC] Sharing a new draft mohamed.boucadair
- Re: [OPSEC] Sharing a new draft liuchunchi